eric allman
Communicationsoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting eric allman.
- CVE-2000-0319mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes vi...5.0
- CVE-1999-0393Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.5.0
- CVE-1999-0145Sendmail WIZ command enabled, allowing root access.7.2
- CVE-1999-0976Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.2.1
- CVE-1999-0203In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.10.0
- CVE-1999-0205Denial of service in Sendmail 8.6.11 and 8.6.12.5.0
- CVE-1999-0163In older versions of Sendmail, an attacker could use a pipe character to execute root commands.7.2
- CVE-1999-0206MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.10.0
- CVE-1999-0204Sendmail 8.6.9 allows remote attackers to execute root commands, using ident.10.0
- CVE-1999-0131Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.7.2
- CVE-1999-0130Local users can start Sendmail in daemon mode and gain root privileges.7.2
- CVE-1999-0129Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.4.6
- CVE-1999-0095The debug command in Sendmail is enabled, allowing attackers to execute commands as root.10.0
- CVE-1999-0057Vacation program allows command execution by remote users through a sendmail command.7.5
- CVE-1999-0047MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.10.0